Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/edd1223a-6776-4911-b74c-bf19916f1367.roa
File: edd1223a-6776-4911-b74c-bf19916f1367.roa (raw, json)
Hash identifier: /5aASM6RQ5URuhOFpjrhtoORf2iEDFJQt0d+jpwfREY=
Subject key identifier: 76:C6:49:24:26:01:F2:58:7B:DD:1B:68:8C:A7:78:56:CA:B2:88:D4
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 469EF336B3E8DC60A946E0833768B21F9F7F9DB8
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/edd1223a-6776-4911-b74c-bf19916f1367.roa
Signing time: Mon 22 Sep 2025 17:41:03 +0000
ROA not before: Mon 22 Sep 2025 17:41:03 +0000
ROA not after: Mon 27 Oct 2025 23:59:59 +0000
asID: 14618
IP address blocks: 2600:1fff:8070::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:9e:f3:36:b3:e8:dc:60:a9:46:e0:83:37:68:b2:1f:9f:7f:9d:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Sep 22 17:41:03 2025 GMT
Not After : Oct 27 23:59:59 2025 GMT
Subject: serialNumber=1610b3fbb739f9caee6bb90837e15bb96a9f7aac18dbbcf6e65e5bd9c25b6138, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:cc:7d:03:7c:52:d2:49:e2:7a:13:ef:6e:ec:
7e:6d:52:3c:04:2d:9b:8c:de:29:43:fb:69:5b:d4:
cd:42:2d:9d:a9:b8:58:1e:a2:13:73:2e:d2:4f:a9:
5a:f2:e0:c9:5c:b3:0e:27:d8:12:5d:ac:87:40:6b:
f2:e4:ef:01:f4:3f:c4:6a:44:8d:87:fa:03:dd:98:
4a:6c:62:03:cf:7e:69:09:bc:62:04:a6:a0:51:6f:
b0:94:d0:6c:c5:45:9b:76:0b:71:8f:78:0b:a1:72:
34:c7:0d:0d:41:1e:64:0f:b4:d8:71:66:d8:16:ab:
40:e7:61:32:8a:a7:2c:42:c4:6a:08:63:71:07:c3:
41:a6:06:df:64:1d:28:46:0a:26:7b:82:8e:76:96:
8d:0d:0a:e0:76:21:5d:93:10:9b:17:84:93:e6:94:
63:fe:4c:23:07:ac:50:89:8c:09:12:85:1e:bb:5b:
72:f1:a6:f7:4d:2d:77:53:c6:45:96:04:ad:11:65:
e0:56:ba:7a:a0:eb:8c:27:7e:d4:e0:17:d6:0b:86:
75:36:ab:54:18:31:28:f7:a2:f9:d2:aa:0d:c0:e2:
5a:0f:cc:cb:10:9e:0d:33:cd:5d:ea:0d:1a:be:a3:
01:30:97:00:33:65:85:f6:44:5b:92:15:f5:f3:bb:
73:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:C6:49:24:26:01:F2:58:7B:DD:1B:68:8C:A7:78:56:CA:B2:88:D4
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/edd1223a-6776-4911-b74c-bf19916f1367.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1fff:8070::/48
Signature Algorithm: sha256WithRSAEncryption
ac:34:1f:65:a7:87:78:67:7c:34:d2:2d:f9:f2:f7:2a:55:48:
24:0d:fc:68:87:72:6d:8d:62:ea:05:5e:9a:07:82:90:b8:e9:
1d:d9:48:2c:f4:cc:d3:54:21:4f:fa:b5:33:1e:14:9a:be:44:
7e:81:59:e0:9b:cc:e1:9d:b4:25:e8:b5:b7:58:41:71:81:aa:
cf:88:7d:b3:3a:22:90:66:e0:43:98:14:05:f5:8e:d7:8e:04:
97:d7:fa:de:e2:ea:9d:82:a5:73:6d:42:0f:c1:6e:e2:7f:97:
45:ea:2c:77:40:f1:bb:f3:82:99:66:c1:01:48:be:7e:2d:52:
6c:dd:8b:dd:26:7f:7b:28:ba:8c:b8:2e:42:2c:fb:f0:cf:4a:
8f:1d:1a:45:06:fc:77:48:cb:82:d4:0a:3b:0d:34:a2:46:4c:
70:e1:7b:79:63:88:88:5a:14:5f:d8:3b:ce:10:62:13:31:9e:
4d:07:9e:5b:6d:99:e4:6e:03:a6:97:e2:48:75:5f:1a:88:e4:
80:f3:35:b3:ae:b8:fa:b7:00:af:0d:8c:7f:4d:3e:57:f9:d2:
70:a4:22:7e:c9:05:8a:4b:70:d9:49:72:49:ba:08:95:24:8a:
9e:4f:b8:e8:a7:fc:6c:7b:f9:d8:2e:f2:ef:9a:fe:d4:c2:3e:
53:94:71:ea
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Oct 8 19:42:47 2025 by rpki-client